error opening /home/step/config/ca.json: open /home/step/config/ca.json: no such file or directory (Minishift)

Question

error opening /home/step/config/ca.json: open /home/step/config/ca.json: no such file or directory (Minishift)

Opened this issue 4 years ago · 4 comments

After installing the chart on minishift . I've got "error opening /home/step/config/ca.json: open /home/step/config/ca.json: no such file or directory" and the pods are not able run

Answer 1 · 2021-01-04T19:52:40.000Z

@minaeshak Can you post the logs of one of the pods named ca-xxxxx. Those are bootstrap jobs in charge of creating the certificate, keys, and ca.json.

Answer 2 · 2022-11-02T03:44:47.000Z

I'm hitting this as well just trying to setup a RA using these instructions. I should point out those instructions seem to be incomplete when compared to these (notice the diff in terms of configuration fields mentioned). In any case, after reviewing both, I am confident my values.yaml is sane and yet, my pod still enters into a CrashLoopBackOff status because it can't find the files mentioned.

❯ helm ls -n core
NAME                    NAMESPACE       REVISION        UPDATED                                 STATUS          CHART                           APP VERSION
step-certificates       core            1               2022-11-01 23:28:59.263645962 -0400 EDT deployed        step-certificates-1.22.1        0.22.1

❯ kga -n core
NAME                      READY   STATUS             RESTARTS       AGE
pod/step-certificates-0   0/1     CrashLoopBackOff   6 (3m4s ago)   9m24s

NAME                        TYPE       CLUSTER-IP      EXTERNAL-IP   PORT(S)         AGE
service/step-certificates   NodePort   10.99.158.185   <none>        443:32400/TCP   9m24s

NAME                                 READY   AGE
statefulset.apps/step-certificates   0/1     9m24s

❯ k get cm -n core
NAME                          DATA   AGE
kube-root-ca.crt              1      2d22h
step-certificates-bootstrap   1      23m
step-certificates-certs       0      23m
step-certificates-config      0      23m
step-certificates-secrets     0      23m

❯ k logs -n core step-certificates-0
Defaulted container "step-certificates" out of: step-certificates, step-certificates-init (init)
error opening /home/step/config/ca.json: open /home/step/config/ca.json: no such file or directory

Which, if any, of the mentioned docs are up to date and correct? As I've been reading more documentation on this site, I get the sense there have been many changes to how things are bootstrapped and the various use cases, along with the relevant docs, seems quite fragmented. Is using this chart solely to run a RA even still legit?

Thanks in advance.

Answer 3 · 2022-11-02T20:10:04.000Z

@windowsrefund that example is deprecated you should use this https://github.com/smallstep/helm-charts/tree/master/step-certificates#tldr

This method also has the benefit of re-creating the same configuration multiple times.

Answer 4 · 2022-11-03T11:45:20.000Z

Hey @maraino, I've looked into @windowsrefund's question on Discord and had to do some manual changes to the generated values.yml when setting up an RA in this way. I also found your issue smallstep/cli#598. It's pretty close to some of the things I've done recently, so I may give it a shot soon 🙂